Install the universal forwarder on AIX
Important: Splunk does not offer an installation package for Splunk Enterprise on AIX. There is a universal forwarder installation package for AIX versions 7.1 and 7.2.
To use Splunk Enterprise on AIX, you must download an older version of the Splunk software.
The user that you install the universal forwarder as must have permission to read
/dev/urandom or the installation will fail.
The AIX universal forwarder installer comes in tar file form. There is no current version of Splunk Enterprise available for AIX.
When you install with the tar file:
- Splunk Enterprise does not create the
splunkuser automatically. If you want Splunk Enterprise to run as a specific user, you must create the user manually.
- Confirm that the disk partition that you install into has enough space to hold the uncompressed volume of the data you want to keep indexed.
- Use GNU
tarto unpack the tar files, as AIX
tarcan fail to unpack long file names, fail to overwrite files, among other things. If you must use the system tar, confirm the
taroutput for error messages. GNU
tarcomes as part of the AIX Toolbox for Linux Applications package (usually as
To install the universal forwarder on an AIX system, expand the tar file into an appropriate directory. The default installation directory for the universal forwarder is
The first time you start the universal forwarder after a new installation, you must accept the license agreement. To start the forwarder and accept the license in one step:
$SPLUNK_HOME/bin/splunk start --accept-license
Note: There are two dashes before the
To configure the forwarder to start automatically at boot time, see Enable boot-start as a non-root user.
See the Universal Forwarder manual to:
Install the universal forwarder on FreeBSD
Install the universal forwarder on HP-UX
This documentation applies to the following versions of Splunk® Enterprise: 6.6.0